$ rpki-client -vvf repo-rpki.idnic.net/repo/4d176ddd-a980-43d6-94a7-95eeda539665/0/3130332e372e3137362e302f32342d3234203d3e20313336303830.roa File: 3130332e372e3137362e302f32342d3234203d3e20313336303830.roa (raw, json) Hash identifier: pULFJZ+nbfV5jOVZtN4jB+N6TsIyKwD9xJ39aFL57ak= Subject key identifier: 57:E8:EB:1F:0C:64:05:BA:D4:13:27:09:B6:BE:BF:38:C1:AB:1D:79 Certificate issuer: /CN=7376922C93BF667FFBBDAF0735AE73D1451B08C2 Certificate serial: 0F6B2BC5710596FB31F1B4957739DE6E9A1EEE92 Authority key identifier: 73:76:92:2C:93:BF:66:7F:FB:BD:AF:07:35:AE:73:D1:45:1B:08:C2 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7376922C93BF667FFBBDAF0735AE73D1451B08C2.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4d176ddd-a980-43d6-94a7-95eeda539665/0/3130332e372e3137362e302f32342d3234203d3e20313336303830.roa Signing time: Sat 28 Jun 2025 05:00:01 +0000 ROA not before: Sat 28 Jun 2025 04:55:01 +0000 ROA not after: Sat 27 Jun 2026 05:00:01 +0000 asID: 136080 IP address blocks: 103.7.176.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4d176ddd-a980-43d6-94a7-95eeda539665/0/7376922C93BF667FFBBDAF0735AE73D1451B08C2.crl rsync://repo-rpki.idnic.net/repo/4d176ddd-a980-43d6-94a7-95eeda539665/0/7376922C93BF667FFBBDAF0735AE73D1451B08C2.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7376922C93BF667FFBBDAF0735AE73D1451B08C2.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 03 Jul 2025 14:18:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:6b:2b:c5:71:05:96:fb:31:f1:b4:95:77:39:de:6e:9a:1e:ee:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7376922C93BF667FFBBDAF0735AE73D1451B08C2 Validity Not Before: Jun 28 04:55:01 2025 GMT Not After : Jun 27 05:00:01 2026 GMT Subject: CN=57E8EB1F0C6405BAD4132709B6BEBF38C1AB1D79 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:07:c3:0f:fc:ac:c0:15:bc:9b:f3:35:dc:bc: 86:e9:0a:f9:96:73:b4:5b:79:6a:b5:64:cc:fd:f6: a9:0a:6a:30:fa:41:20:73:f9:6a:2e:27:71:4c:a2: 7b:4d:a6:7d:72:30:0a:cb:42:b7:f0:14:10:a9:16: e0:48:e6:3a:81:81:cc:e7:3e:18:7c:04:29:b5:a0: 00:f2:6c:22:38:46:f3:b8:cc:fb:5a:3f:aa:d0:1e: f6:e7:17:fe:ab:e5:69:3c:7e:c8:86:ef:78:eb:be: 32:8d:56:b1:d3:c3:dd:59:67:5f:7b:61:05:3e:d0: c1:2e:02:74:0d:42:c7:17:ab:b4:52:2e:1c:68:97: ff:59:d0:2f:6f:5e:30:92:54:66:5b:c0:d4:2a:9a: d8:c5:4d:42:db:98:ac:96:2d:46:ce:04:6d:1b:ff: 27:51:b6:41:39:92:93:32:27:91:dd:ae:60:75:b1: 0b:8a:5b:2f:25:3c:2b:c9:d2:8f:5d:68:9e:57:f0: c6:ce:1c:e8:7f:df:d1:7d:27:2b:f3:3e:bb:64:2b: 77:32:b6:8c:49:9e:6e:9b:1d:11:80:b7:4a:8d:42: 5f:8e:a6:6a:5a:fb:57:9f:d3:ae:1f:b4:c0:9b:99: 2e:61:0b:ee:e7:95:c2:02:c7:8e:bc:da:93:c1:5a: 1b:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:E8:EB:1F:0C:64:05:BA:D4:13:27:09:B6:BE:BF:38:C1:AB:1D:79 X509v3 Authority Key Identifier: keyid:73:76:92:2C:93:BF:66:7F:FB:BD:AF:07:35:AE:73:D1:45:1B:08:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4d176ddd-a980-43d6-94a7-95eeda539665/0/7376922C93BF667FFBBDAF0735AE73D1451B08C2.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7376922C93BF667FFBBDAF0735AE73D1451B08C2.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4d176ddd-a980-43d6-94a7-95eeda539665/0/3130332e372e3137362e302f32342d3234203d3e20313336303830.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.7.176.0/24 Signature Algorithm: sha256WithRSAEncryption 68:fb:2f:dd:0e:aa:4e:95:7e:fd:10:4d:56:c7:fe:50:45:ea: b0:af:58:a8:46:39:8a:00:96:e4:f4:02:f8:d2:af:b9:83:16: 6a:c5:7b:bc:40:c2:5b:d7:98:6e:7d:17:bb:8b:18:23:3c:fa: 38:e7:af:9a:5f:86:20:b1:33:85:1e:96:f0:bc:e3:98:2a:29: 30:40:26:24:09:69:d8:42:1f:97:b7:42:8e:52:9f:83:41:93: 36:c8:9a:37:a4:9c:75:87:4f:6c:aa:f0:ac:89:9f:db:4d:fd: 66:1e:bb:e2:3a:ab:48:e6:96:2d:be:b4:c5:fc:2d:33:5b:c8: a8:ea:fd:f1:95:6a:9c:b3:29:77:70:59:15:0d:7e:10:0b:77: 8a:0c:c1:1a:c2:55:83:31:47:66:ba:41:ef:e5:81:2a:f6:fb: 95:39:1b:84:3d:dc:25:19:36:b8:b4:77:da:0e:e3:50:78:2c: 08:8e:f1:99:f2:23:03:b7:00:dd:ce:89:96:bb:56:48:e1:be: 86:3e:bf:76:b3:71:54:08:0a:22:dc:2b:0d:1a:f2:2e:11:66: 34:58:3e:02:83:c4:00:37:89:78:0f:fc:aa:d9:88:c1:5a:f4: 8d:57:21:fb:48:84:a0:6f:a1:64:5c:01:fb:de:d5:03:8d:e0: 61:d8:ed:3b -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUD2srxXEFlvsx8bSVdznebpoe7pIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzM3NjkyMkM5M0JGNjY3RkZCQkRBRjA3MzVBRTczRDE0 NTFCMDhDMjAeFw0yNTA2MjgwNDU1MDFaFw0yNjA2MjcwNTAwMDFaMDMxMTAvBgNV BAMTKDU3RThFQjFGMEM2NDA1QkFENDEzMjcwOUI2QkVCRjM4QzFBQjFENzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHB8MP/KzAFbyb8zXcvIbpCvmW c7RbeWq1ZMz99qkKajD6QSBz+WouJ3FMontNpn1yMArLQrfwFBCpFuBI5jqBgczn Phh8BCm1oADybCI4RvO4zPtaP6rQHvbnF/6r5Wk8fsiG73jrvjKNVrHTw91ZZ197 YQU+0MEuAnQNQscXq7RSLhxol/9Z0C9vXjCSVGZbwNQqmtjFTULbmKyWLUbOBG0b /ydRtkE5kpMyJ5HdrmB1sQuKWy8lPCvJ0o9daJ5X8MbOHOh/39F9JyvzPrtkK3cy toxJnm6bHRGAt0qNQl+Opmpa+1ef064ftMCbmS5hC+7nlcICx4682pPBWhuhAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUV+jrHwxkBbrUEycJtr6/OMGrHXkwHwYDVR0j BBgwFoAUc3aSLJO/Zn/7va8HNa5z0UUbCMIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 ZDE3NmRkZC1hOTgwLTQzZDYtOTRhNy05NWVlZGE1Mzk2NjUvMC83Mzc2OTIyQzkz QkY2NjdGRkJCREFGMDczNUFFNzNEMTQ1MUIwOEMyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzM3NjkyMkM5M0JGNjY3RkZCQkRBRjA3MzVBRTczRDE0NTFC MDhDMi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRkMTc2ZGRkLWE5ODAtNDNkNi05 NGE3LTk1ZWVkYTUzOTY2NS8wLzMxMzAzMzJlMzcyZTMxMzczNjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzMzNjMwMzgzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGcHsDANBgkqhkiG 9w0BAQsFAAOCAQEAaPsv3Q6qTpV+/RBNVsf+UEXqsK9YqEY5igCW5PQC+NKvuYMW asV7vEDCW9eYbn0Xu4sYIzz6OOevml+GILEzhR6W8LzjmCopMEAmJAlp2EIfl7dC jlKfg0GTNsiaN6ScdYdPbKrwrImf2039Zh674jqrSOaWLb60xfwtM1vIqOr98ZVq nLMpd3BZFQ1+EAt3igzBGsJVgzFHZrpB7+WBKvb7lTkbhD3cJRk2uLR32g7jUHgs CI7xmfIjA7cA3c6JlrtWSOG+hj6/drNxVAgKItwrDRryLhFmNFg+AoPEADeJeA/8 qtmIwVr0jVch+0iEoG+hZFwB+97VA43gYdjtOw== -----END CERTIFICATE-----Generated at Tue Jul 1 15:32:02 2025 by rpki-client